ETag valuehttp://www.pcper.com
PC Perspectivehttp://www.pcper.com/images/podcast-logo-600x600.pngenSo you think nobody knows what you've been watching on the net?http://www.pcper.com/news/General-Tech/So-you-think-nobody-knows-what-youve-been-watching-net
<p>KISSmetrics is a small company which is able to track your movements across sites like Hulu and Spotify, using what some call a super cookie but more accurately is an ETag value.&nbsp; That ETag value is a unique identifier stored in both a browser's cache and metadata folders which can be sent to KISSmetrics via JavaScript along with a header, so that any time you visit a site partnered with KISSmetrics they will know it is you.</p>
<p>Of course, very soon after the technical documentation of the trick was released to the net <a href="http://blog.kissmetrics.com/official-kissmetrics-response-to-data-collection-practices/">KISSmetrics claimed that they were completely innocent</a> and that it was all a misunderstanding.&nbsp; According to the CEO of KISSmetrics the company has never tracked anyone nor shared the information with a third party, so either the company never plans to ever make any money or he is being very specific in his definitions of what &quot;is is&quot;.&nbsp; Even better, they claim not to use ETag values at all only first party cookies.&nbsp; As well, they claim support for the Do Not Track header and a &quot;consumer-level opt-out&quot; for their tracking as well.&nbsp; That is disingenuous in that there is no sign of how to start the opt out process on their site, nor is there any clear way that they could identify you in order to let you opt out without a cookie or ETag placed on your machine in the first place.</p>
<p>The Do Not Track header is a good idea, but in addition you should consider browser add ins such as <a href="https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/">BetterPrivacy</a>, <a href="http://noscript.net/">NoScript</a> and <a href="http://www.ghostery.com/download">Ghostery</a> as essential and perhaps even get used to running Chrome in Incognito mode, if you do not want to be trapped.&nbsp; Don't use them to disable the ads which fund <a href="http://www.pcper.com/">your favourite website</a>s, they should be used to identify and possible block violations to your privacy only.&nbsp; You can <a href="http://www.theregister.co.uk/2011/08/16/cookie_respawning_secrets_revealed/">follow the link at The&nbsp;Register</a> if you would like to see the technical research that has lead to these questions about KISSmetrics.</p>
<p class="rtecenter"><div class = "center-article-image"><a href="/news/General-Tech/So-you-think-nobody-knows-what-youve-been-watching-net" class="inline-image-link" title="View: supercookie.jpg"><img src="/files/imagecache/article_max_width/news/2011-08-17/supercookie.jpg" alt="supercookie.jpg" title="supercookie.jpg" class="pcper-inline" width="252" height="213" /></a></div></p>
<blockquote><p>&quot;A privacy researcher has revealed the evil genius behind a for-profit web analytics service capable of following users across more than 500 sites, even when all cookie storage was disabled and sites were viewed using a browser's privacy mode.&quot;</p>
</blockquote>
<p>Here is some more Tech News from around the web:</p>
<p><b><a href="http://forums.pcper.com/forumdisplay.php?f=54">Tech Talk</a></b></p>
<ul>
<li><a target="_blank" href="http://www.anandtech.com/show/4624/observations-on-the-googlemotorola-purchase">Observations on the Google-Motorola Purchase @ AnandTech</a></li>
<li><a target="_blank" href="http://it.slashdot.org/story/11/08/17/1250213/GPGPU-Bitcoin-Mining-Trojan">GPGPU Bitcoin Mining Trojan @ Slashdot</a></li>
<li><a target="_blank" href="http://www.bjorn3d.com/forum/showthread.php/37071-Kingston-Scavenger-Hunt-Contest">Kingston Scavenger Hunt Contest @ Bjorn3D</a></li>
</ul>
<p><a href="http://www.pcper.com/news/General-Tech/So-you-think-nobody-knows-what-youve-been-watching-net" target="_blank">read more</a></p>http://www.pcper.com/news/General-Tech/So-you-think-nobody-knows-what-youve-been-watching-net#commentsGeneral TechETag valuefudsecuritysuper cookietracking cookieWed, 17 Aug 2011 18:03:03 +0000Jeremy Hellstrom52132 at http://www.pcper.com